Legal notice & privacy policy

imprint

Information according to § 5 TMG

Zwerenz Industries GmbH
c/o Fritz Bögel
Steinbergstrasse 57
95671 Bärnau

Commercial Register: HRB 3218
Registry Court: Weiden District Court

Represented by:
Jürgen Zwerenz

contact

Telephone: +49 (0) 96 35 / 92 10 0
Fax: +49 (0) 96 35 / 92 10 49
Email: info@fritz-boegel.com

VAT ID

VAT identification number according to § 27a of the German VAT Act:
DE255287173

EU dispute resolution

The European Commission provides a platform for online dispute resolution (ODR): https://ec.europa.eu/consumers/odr/.
You can find our email address in the legal notice above.

Consumer dispute resolution/Universal arbitration body

We are neither willing nor obligated to participate in dispute resolution proceedings before a consumer arbitration board.

Implementation of online marketing & online presence

Tobias Kühn
Hinter dem Tannenberg 42
92690 Pressath

Internet: digitalloesungen.de
Phone: 015678 581269
E-mail: tobias@digitalloesungen.de

Privacy Policy

Introduction

With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for what purposes, and to what extent. This privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and, in particular, on our websites, in mobile applications, and within external online presences, such as our social media profiles (hereinafter collectively referred to as "online services").

The terms used are not gender-specific.

Table of Contents

• Introduction
• Responsible
• Contact Data Protection Officer
• Overview of processing activities
• Relevant legal bases
• Security measures
• Transfer of personal data
• Deletion of data
• Use of cookies
• Provision of the online service and web hosting
• Contact and inquiry management
• Web analytics, monitoring and optimization
• Plugins and embedded functions as well as content
• Changes and updates to the privacy policy

Responsible

Zwerenz Industries GmbH
Steinbergstrasse 57
95671 Bärnau

Authorized representatives:

Jürgen Zwerenz
E-mail address:
info@fritz-boegel.com

Contact Data Protection Officer

info@fritz-boegel.com

Overview of processing activities

The following overview summarizes the types of data processed and the purposes of their processing, and refers to the data subjects.

Types of data processed

• Location data.
• Contact details.
• Content data.
• Usage data.
• Metadata, communication data and process data.

Categories of affected persons

• Communication partner.
• Users.

Purposes of processing

• Contact requests and communication.
• Security measures.
• Range measurement.
• Managing and responding to inquiries.
• Feedback.
• Profiles containing user-related information.
• Provision of our online services and user-friendliness.
• Information technology infrastructure.

Relevant legal bases

Below you will find an overview of the GDPR legal bases on which we process personal data. Please note that in addition to the GDPR regulations, national data protection laws may apply in your or our country of residence or establishment. Furthermore, should more specific legal bases apply in individual cases, we will inform you of these in the privacy policy.

• Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) – The data subject has given consent to the processing of their personal data for one or more specific purposes.
• Contractual performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR) – The processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract.
• Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

In addition to the GDPR's data protection regulations, national data protection regulations apply in Germany. These include, in particular, the Federal Data Protection Act (BDSG). The BDSG contains specific provisions regarding the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes, and data transfers, as well as automated decision-making in individual cases, including profiling. Furthermore, it regulates data processing for employment-related purposes (§ 26 BDSG), especially with regard to the establishment, execution, or termination of employment relationships and the consent of employees. In addition, state data protection laws of the individual federal states may also apply.

Security measures

In accordance with legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the varying likelihood and severity of the threat to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as access to, input of, transfer of, and ensuring the availability and separation of the data. Furthermore, we have established procedures that guarantee the exercise of data subject rights, the deletion of data, and responses to data breaches. We also consider the protection of personal data during the development and selection of hardware, software, and processes, in accordance with the principles of data protection by design and by default.

IP address truncation: If IP addresses are processed by us or by the service providers and technologies we use, and processing a full IP address is not necessary, the IP address is truncated (also known as "IP masking"). This involves removing the last two digits, or the last part of the IP address after a period, or replacing them with placeholders. The purpose of truncating the IP address is to prevent or significantly hinder the identification of a person based on their IP address.

TLS encryption (https): To protect the data you transmit via our online service, we use TLS encryption. You can recognize such encrypted connections by the prefix https:// in your browser's address bar.

Transfer of personal data

As part of our processing of personal data, it may be necessary to transfer or disclose data to other entities, companies, legally independent organizational units, or individuals. Recipients of this data may include, for example, IT service providers or providers of services and content integrated into a website. In such cases, we comply with legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data to protect your data.

Data transfer within the organization: We may transfer personal data to other entities within our organization or grant them access to this data. If this transfer is for administrative purposes, it is based on our legitimate business interests, is necessary for the performance of our contractual obligations, or is permitted by law.

Deletion of data

The data we process will be deleted in accordance with legal requirements as soon as the consent to process it is withdrawn or other legal grounds for processing cease to apply (e.g., if the purpose for processing this data no longer exists or it is no longer necessary for that purpose). If the data is not deleted because it is required for other legally permissible purposes, its processing will be restricted to those purposes. This means the data will be blocked and not processed for any other purpose. This applies, for example, to data that must be retained for commercial or tax law reasons, or whose storage is necessary for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person.

Our privacy policy may also contain further information on the storage and deletion of data, which takes precedence for the respective processing activities.

Use of cookies

Cookies are small text files or other storage markers that store information on and read information from end devices. For example, they can be used to save login status in a user account, shopping cart contents in an online store, accessed content, or used functions of an online service. Cookies can also be used for various other purposes, such as improving the functionality, security, and user-friendliness of online services, as well as analyzing visitor traffic.

Information regarding consent: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users unless legally required. In particular, consent is not necessary if the storage and reading of information, including cookies, is absolutely essential to provide users with a telemedia service (i.e., our online service) that they have expressly requested. The revocable consent is clearly communicated to users and includes information on the respective cookie usage.

Information on the legal basis for data protection: The legal basis under data protection law for processing users' personal data using cookies depends on whether we request user consent. If users consent, the legal basis for processing their data is their explicit consent. Otherwise, data processed using cookies is processed based on our legitimate interests (e.g., in the efficient operation of our online services and improving their usability) or, if this occurs within the scope of fulfilling our contractual obligations, if the use of cookies is necessary to meet these obligations. We explain the purposes for which we process cookies in this privacy policy or within the framework of our consent and processing procedures.

Storage duration: With regard to storage duration, the following types of cookies are distinguished:

• Temporary cookies (also known as session cookies): Temporary cookies are deleted at the latest after a user leaves an online service and closes their device (e.g. browser or mobile application).
• Persistent cookies: Persistent cookies remain stored even after the user closes their device. This allows, for example, login status to be saved or preferred content to be displayed directly when the user revisits a website. Similarly, user data collected via cookies can be used for audience measurement. Unless we explicitly inform users about the type and storage duration of cookies (e.g., when obtaining consent), users should assume that cookies are persistent and can be stored for up to two years.

General information on revocation and objection (opt-out): Users can withdraw their consent at any time and also object to processing in accordance with the legal requirements of Article 21 GDPR. Users can also declare their objection via their browser settings, e.g., by deactivating the use of cookies (although this may also restrict the functionality of our online services). An objection to the use of cookies for online marketing purposes can also be made via the websites. https://optout.aboutads.info and https://www.youronlinechoices.com/ will be explained.

Provision of the online service and web hosting

We process user data to provide our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device.

• Data types processed: Usage data (e.g., websites visited, interest in content, access times); meta, communication and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status).
• Affected persons: Users (e.g., website visitors, users of online services).
• Purposes of processing: Provision of our online services and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical equipment (computers, servers, etc.)); Security measures.
• Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing procedures, methods and services:

• Collection of access data and log files: : Access to our online services is logged in the form of so-called "server log files". These server log files may contain the address and name of the accessed web pages and files, the date and time of access, the amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), and, typically, IP addresses and the requesting provider.

  Server log files can be used for security purposes, e.g., to prevent server overload (especially in the case of malicious attacks, so-called DDoS attacks), and to ensure server utilization and stability; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Deletion of data: Log file information is stored for a maximum of 30 days and then deleted or anonymized. Data that needs to be retained for evidentiary purposes is exempt from deletion until the respective incident has been fully resolved.

Contact and inquiry management

When you contact us (e.g. by post, contact form, email, telephone or via social media) and within the framework of existing user and business relationships, the information of the requesting persons is processed to the extent necessary to answer the contact requests and any requested measures.

• Data types processed: Contact details (e.g., email addresses, telephone numbers); content data (e.g., entries in online forms); usage data (e.g., websites visited, interest in content, access times); meta, communication and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status).
• Affected persons: Communication partner.
• Purposes of processing: Contact requests and communication; managing and responding to inquiries; feedback (e.g., collecting feedback via online form); providing our online services and user-friendliness.
• Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); performance of a contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).

Further information on processing procedures, methods and services:

• Contact form: : When users contact us via our contact form, email or other communication channels, we process the data provided to us in this context to handle the communicated request; Legal basis: Contractual performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Web analytics, monitoring and optimization

Web analytics (also known as "reach measurement") is used to evaluate visitor traffic to our online services and can include pseudonymous data on visitor behavior, interests, or demographic information such as age or gender. Reach analysis allows us, for example, to identify when our online services, their features, or content are most frequently used or encourage repeat visits. It also helps us understand which areas require optimization.

In addition to web analytics, we can also use testing procedures to test and optimize different versions of our online offering or its components.

Unless otherwise stated below, profiles—that is, data aggregated from a usage session—may be created for these purposes, and information may be stored in and retrieved from a browser or device. The data collected includes, in particular, visited websites and elements used therein, as well as technical information such as the browser and operating system used, and usage times. If users have consented to the collection of their location data by us or by the providers of the services we use, location data may also be processed.

User IP addresses are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect users. Generally, no clear user data (such as email addresses or names) is stored for web analytics, A/B testing, and optimization; instead, pseudonyms are used. This means that neither we nor the providers of the software used know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.

Settings/Opt-out option:

Opt-out complete; your visits to this website will not be recorded by the Web Analytics tool. Note that if you clear your cookies, delete the opt-out cookie, or if you change computers or Web browsers, you will need to perform the opt-out procedure again.

You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.

You are not opted out. Uncheck this box to opt-out. You are currently opted out. Check this box to opt-in.

The tracking opt-out feature requires cookies to be enabled.

• Data types processed: Usage data (e.g., websites visited, interest in content, access times); meta, communication and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status).
• Affected persons: Users (e.g., website visitors, users of online services).
• Purposes of processing: Audience measurement (e.g., access statistics, recognition of returning visitors); profiles with user-related information (creation of user profiles).
• Security measures: IP masking (pseudonymization of the IP address).
• Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).

Further information on processing procedures, methods and services:

• Matomo: : Matomo is software used for web analytics and audience measurement. When using Matomo, cookies are generated and stored on the user's device. The user data collected through Matomo is processed only by us and is not shared with third parties. The cookies are stored for a maximum period of 13 months. https://matomo.org/faq/general/faq_146/; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Deletion of data: The cookies have a maximum storage period of 13 months.

Plugins and embedded functions as well as content

We integrate functional and content elements into our online services that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These may include, for example, graphics, videos, or city maps (hereinafter collectively referred to as "content").

The integration of third-party content always requires that these providers process users' IP addresses, as they cannot send the content to users' browsers without them. The IP address is therefore necessary for displaying this content or these functions. We strive to use only content from providers who use IP addresses solely for content delivery. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. These pixel tags allow for the analysis of information such as visitor traffic on the pages of this website. The pseudonymized information can also be stored in cookies on users' devices and may include, among other things, technical information about the browser and operating system, referring websites, the time of visit, and other information about the use of our online services, as well as be combined with such information from other sources.

• Data types processed: Usage data (e.g., websites visited, interest in content, access times); meta, communication and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status); location data (information on the geographic position of a device or person).
• Affected persons: Users (e.g., website visitors, users of online services).
• Purposes of processing: Provision of our online services and user-friendliness.
• Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing procedures, methods and services:

• Google Fonts (hosted on our own server): : Provision of font files for the purpose of a user-friendly presentation of our online offer; Service provider: The Google Fonts are hosted on our server; no data is transmitted to Google.; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
• Google Maps: : We integrate maps from the "Google Maps" service provided by Google. The data processed may include, in particular, users' IP addresses and location data; Service provider: Google Cloud EMEA Limited, 70 Sir John Rogerson's Quay, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://mapsplatform.google.com/; Privacy Policy: https://policies.google.com/privacy.

Changes and updates to the privacy policy

We ask that you regularly review the content of our privacy policy. We will update the privacy policy as soon as changes to our data processing activities make this necessary. We will inform you if any changes require action on your part (e.g., consent) or any other individual notification.

If we provide addresses and contact information for companies and organizations in this privacy policy, please note that the addresses may change over time and ask you to check the information before contacting them.

Created with the free data privacy generator Datenschutz-Generator.de by Dr. Thomas Schwenke